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CLAIMS 



[Utility model registration claim] 

[Claim 1] In the data data encryption equipment which receives the cipher enciphered by the private key 
cryptosystem, decodes this, and obtains a plaintext The key data table which generates the key data which stored 
two or more cryptographic key data required in order to decode a cipher, and were specified as the cipher input 
circuit which receives a cipher by the address. The decryption circuit which decrypts by inputting the cipher output 
of the key data outputted from a key data table, and said cipher input circuit and outputs the result as plaintext 
data. By inputting the plaintext data of a decryption circuit and supervising the redundant bit of the plaintext 
memorized in the plaintext store circuit which memorizes this, and the plaintext store circuit The judgment result of 
the plaintext significance judging circuit which judges whether it decoded correctly, and a plaintext significance 
judging circuit is inputted. Data data encryption equipment characterized by having the key data table address 
generation circuit which increments the one address and supplies address data to said key data table only when 
significance is not accepted. 

[Claim 2] In the data data encryption equipment which receives the cipher enciphered by the private key 
cryptosystem, decodes this, and obtains a plaintext The cipher input circuit which receives a cipher, and the cipher 
store circuit which memorizes the output of a cipher input circuit temporarily. The key data table which generates 
the key data which stored two or more cryptographic key data required in order to decode a cipher, and were 
specified by the address, The decryption circuit which the cipher which the key data outputted from a key data 
table and said cipher store circuit memorized is inputted, decodes a code, and outputs the result as plaintext data, 
By inputting the plaintext data of a decryption circuit and supervising the redundant bit of the plaintext memorized 
in the plaintext store circuit which memorizes this, and the plaintext store circuit When the judgment result of the 
plaintext significance judging circuit which judges whether decode was performed correctly, and a plaintext 
significance judging circuit is inputted and significance is not accepted Data data encryption equipment 
characterized by having the key data table address generation circuit which continues an increment until it repeats 
the actuation which increments the one address and supplies address data to said key data table and the judgment 
result of said plaintext significance judging circuit shows significance. 
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DETAILED DESCRIPTION 



[Detailed explanation of a design] 
[0001] 

[Industrial Application] 

This design is related with the decryptor in the cryptocommunication system which used two or more key data. 
[0002] 

[Description of the Prior Art] 

In the field of digital communication, the signal from the information source is changed into the numerical train which 
generally consists of binary [ of "1" and "0" ]. by modulating a carrier signal with binary [ this ]. is sent out to 
wireless or a cable-transmission way, and is transmitted to the destination. As a signal from the information source, 
there are an alphabetic character, voice, an image, etc., for example, and these information source signals are in the 
situation which a third party can monitor easily on a transmission line. When using the transmission line which a third 
party can monitor as mentioned above and transmitting information, about the information source data which have 
secrecy nature, it enciphers by the information source side, and the so-called cryptocommunication system which 
restores the signal from the information source of even if it decrypts this by the receiving side of the destination is 
constituted. 
[0003] 

Although the thing based on various principles is proposed and used as a cryptocommunication system, there are 
some which are called a private key cryptosystem to one of the methods used well. In the private key cryptosystem, 
the substitution type which transposes information which replaces the sequence of information, such as an 
alphabetic character, such as a transposition type and an alphabetic character, to other alphabetic characters etc. 
is used. The third party who does not know under what kind of regulation information was processed cannot decode 
the information from the information source which is processed and is sent out to a transmission line by these 
actuation, but it makes decode possible only by the receiving side of the destination which knows the regulation. 
Therefore, in the above-mentioned private key cryptosystem, it becomes important to protect the conversion table 
of substitution, the regulation, i.e., the transposition, used since [to encipher ] the transmitting side and the 
receiving side know, so that it may not be known by the third party. From the conversion table of transposition or 
substitution being called a key, the above-mentioned method is called a private key cryptosystem. Here, although a 
fixed period and the same thing are used, in order to secure communicative secrecy nature, it is not desirable [ key 
data ] to use the same key data for a long time. It is because sufficient time amount and sufficient opportunities, 
such as the so-called known plaintext attack, to collect sufficient samples of correspondence with the same key, 
analyze this, and discover a cryptographic key for a wire-tapping person will be given when a communication link is 
continued over a long period of time using the same key data. Since discovery of key data becomes still easier when 
especially the algorithm of a code is exhibited, key data need to be frequently exchangeable. 
[0004] 

Now, if a transmitting side and a receiving side synchronize and naturally do not exchange in case key data are 
exchanged, it cannot be overemphasized that a cipher is undecipherable by the receiving side. Then, although 
delivery of key data is made by various approaches, safety is high If it can deliver for example, with a means 
different from the channel which sends and receives a cipher. In the system in which the communication link of a 
cipher is performed by the electrical communication by the cable, considering the case where deliver the time which 
exchanges cryptographic key data from a transmitting side beforehand, and new cryptographic key data to a 
receiving side with a physical means, and each parameter of a decryption machine is set based on these by the 
receiving side, a third party does not have a means to monitor this, but can secure high safety. 
[0005] 

However, when especially the distance of a transmitting side and a receiving side is remarkably separated and does 
not have delivery means other than a communicative transmission line (i.e., when it does not have a physical means 
to deliver key data), the delivery of key data itself will not obtain +****=t^+* to the channel which a third party can 
monitor. In this case, wire tapping whose channel itself which delivers key data is a third party is possible, since 
there is risk of key data being decoded, renewal of key data will not be performed, but the key data initialized in the 
key data store circuit will be used continuously. Therefore, the need for a means to exchange key data at insurance 
in such a case arises. 
[0006] 

the example of the conventional data data encryption equipment with which drawing 4 possesses the key delivery 
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means in a private key cryptosystem — it is — drawing — setting — 1 — an input cipher and 2 — a cipher input 
circuit and 3 — a cipher and 5 — key data and 6 — for a plaintext output circuit and 9, as for a key data distinction 
circuit and 21, an output plaintext and 20 are [ a decryption circuit and 7 / a plaintext and 8 / updating key data and 
22 ] key data store circuits. 
[0007] 

Next, actuation is explained. It is received in the cipher input circuit 2, and the input cipher 1 is inputted into the 
decryption circuit 6 as a cipher 3. On the other hand, the key data 5 for decoding a code in the decryption circuit 6 
are supplied to the decryption circuit 6 from the key data store circuit 22. Using the key data 5. the decryption 
circuit 6 decodes a cipher 3 and outputs the result as a plaintext 7. A plaintext 7 is outputted as an output plaintext 
9 from the plaintext output circuit 8. The cipher input circuit 2 has the function of the buffer for processing input 
data in a decryption circuit here. For example, when the input cipher 1 is a serial data format, the cipher input 
circuit 2 is changed into the parallel data which consist of the number of bits to which the cipher decode circuit 6 
processes this simultaneously. Moreover, in the plaintext output circuit 8, it has the function to change again into 
serial data the parallel data outputted to reverse from a cipher decode circuit. 
[0008] 

Here, although a cipher 3 is decoded by the decryption circuit 4 and a plaintext 7 is outputted as an output plaintext 
through the plaintext output circuit 8. a plaintext 7 is simultaneously supplied aiso to the key data distinction circuit 
20. In a key data distinction circuit, if the specific information included in a plaintext 7 is detected and it 
distinguishes that it is delivery of key data, the detected updating key data 21 wilt be supplied to the key data store 
circuit 22. The key data of a key data store circuit are carried out in this way, and are updated, and data with the 
new key data to the decryption circuit 4 after this are used. In a transmitting side, since it enciphers by updating 
one's encryption key after delivering the above-mentioned key data, renewal of the key data which synchronized by 
transmission and the receiving side is attained. When the transmitting side was arbitration, key data are changed, 
transmit key data from the channel of a cipher as a cipher by the specific approach, this is received in a receiving 
side, it distinguishes whether it is key data enciphered by the above-mentioned specific approach and it is detected 
that it is delivery of key data, key data are updated and decryption after this can be carried out with new key data. 
[0009] 

[Problem(s) to be Solved by the Device] 

Also in the communication system which cannot perform delivery of key data through the channel of a cipher, and 
cannot deliver key data in the aforementioned example other than a cipher channel Although decode of the 
cryptographic key data by the third party who monitors the above-mentioned channel by delivering key data to 
arbitration via a cipher channel is difficult On the other hand, when the updating key data once received by the 
receiving side in the transmitting side according to a certain cause were missed, it did not have a means by which it 
could be known but the technical problem that the communication link after this became impossible occurred. That 
is, when the key data written in a key data store circuit contain the error, there is possibility of an error — some 
bits of the once written-in key data are reversed with a noise or a soft error — of being generated. 
[0010] 

This design is in the system which cannot but use the transmission line of the communication link by delivery of key 

data itself to obtain the data data encryption equipment which a third party cannot decode. 

[0011] 

Future communication links are enabled by detecting that changed into arbitration the key data used by the 
transmitting side, and key data were changed by the receiving side, and performing subsequent decode using new 
key data, without delivering from a transmitting side via a communicative transmission line to a receiving side, in 
order to cope with the conventional technical problem carried out in the first half 
[0012] 

[Means for Solving the Problem] 

The table which contained two or more key data beforehand is held by the receiving side, a receiving side searches 

the content of the key data receipt table automatically, without transmitting the key data used from a transmitting 

side for decryption to a receiving side, and the data data encryption equipment concerning this design makes it 

possible to decode key data according to the thing of a transmitting side. 

[0013] 

[Function] 

A receiving side detects modification of the key data of a transmitting side automatically, and the data data 

encryption equipment in this design enables subsequent communication links, also when the key data used by the 

transmitting side are changed into arbitration. 

[0014] 

[Example] 

Example 1 

the block diagram of the data data encryption equipment which drawing 1 shows one example of this design — it is 
— drawing — setting — 1 — an input cipher and 2 — a cipher input circuit and 3 — a cipher and 4 — a key data 
table and 5 — for a plaintext and 8, as for an output plaintext and 10, a plaintext output circuit and 9 are [ key data 
and 6 / a decryption circuit and 7 / a plaintext store circuit and 1 1 ] storage plaintexts. Moreover," as for the 
significance judging result flag of a plaintext, and 1 6. the plaintext significance judging circuit where 1 2 judges the 
significance about the storage plaintext 11, the significance level-setting circuit which sets up the level 13 judges 
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the existence of significance to be, the significance level to which 14 was set, and 15 are [ a key data table address 

generation circuit and 17 ] the key data table addresses. 

[0015] 

Now, in the above-mentioned example, the output plaintext 9 of the plaintext output circuit 8 Is once memorized in 
the plaintext store circuit 10, and the storage plaintext 11 of the plaintext store circuit 10 is inputted into the 
plaintext significance judging circuit 12. In the plaintext significance judging circuit 12. the significance of the storage 
plaintext 1 1 is judged on the basis of the significance level 14 beforehand set as the significance level-setting circuit 
13. and the result is outputted as a significance judging result flag 15. The key data table address generation circuit 
15 does not change the address already set up when it is shown that significance has the above-mentioned 
significance judging result flag 15, but when it is shown that there is no significance on the other hand, it changes 
the key data table address 1 7, and the new data of the key data table 4 are urged to it 
[0016] 

The concrete actuation in the above-mentioned example is explained. The key data of N kind (N N>-2 integer) shall 
be stored in the key data table 4. Suppose that it is also the encryption equipment of a transmitting side in the 
condition that are completely using the same key data table and the transmitting side and the receiving side are 
using the n-th key data (n 1 <=n<=N integer) among those now. In this condition, in order to decrypt a receiving side 
by the transmitting side using the completely same key data as the key data used for encryption, a right plaintext 
output is obtained. At a certain event, the case where a transmitting side changes key data is considered. When the 
key data newiy chosen by the transmitting side are the thing of eye watch (n+l) of a key data table, a right plaintext 
output is not obtained as a result decoded by the receiving side using the n-th key data. 

At this time, the mistaken output plaintext 9 is memorized in the plaintext store circuit 10, and the significance 
judging result flag 15 is set to non-significant condition as a result of having judged that significance in the plaintext 
significance judging circuit 12. In the key data table address selection circuit 16, when a significance judging result 
flag is non-significant condition, the key data table address 17 is incremented one time. Consequently, the key data 
which the key data table 4 generates are updated. 
[0017] 
Example 2 

Here, the method of performing the significance judging of a plaintext can consider various kinds of things. For 
example, a simple example is shown in drawing 2 . In drawing, the 8-bit redundant bit for error detection is added to 
a 56-bit information bit as a plaintext before being enciphered, and the block cipher which makes a 64-bit plaintext 
1 block is considered. A cryptographic key is 64 bits as well as plaintext length, and in a transmitting side, it 
enciphers according to the algorithm to which the 64-bit cipher was beforehand set with 64-bit key data, and it 
generates a 64-bit cipher. On the other hand, by the receiving side, this is decrypted with 64-bit key data, and a 64- 
bit plaintext is reproduced. When the code used by the transmitting side is changed now, by the receiving side, this 
cannot be known, and in order to decode by different key data from the key data used for encryption, the plaintext 
data which were mistaken as plaintext data outputted are obtained. Therefore, an error is generated in the 8-bit 
redundant bit for error detection, and modification of key data can be known by supervising the redundant bit for 
error detection in the plaintext significance judging circuit 12. Here, the allowance error number of bits is set up in 
the significance level-setting circuit 1 3. That is, in not permitting an error at all and permitting 0 bit and an error, it 
sets up the allowance number of bits beforehand. 
[0018] 

If an error is detected by key data, the key data table address generation circuit 16 will increment the key data table 
address 17 one time with the significance judging result flag 1 5 as mentioned above. In order that the key data table 
4 may choose the new key data by which the increment was carried out and may supply them to the decryption 
circuit 6, decryption after this will be performed using new key data. 
[0019] 

The key data changed by the transmitting side cannot decode the input cipher after this correctly in the receiving 
side which incremented one time as mentioned above, when it is not necessarily limited to the next key data table 
address in use, therefore changes into the key data offer example, 5 address point. In this case, in a transmitting 
side, if the same new cipher is transmitted 5 times, since a total of five increments of addresses will be carried out 
by the 5th reception, right decode is attained. In a transmitting side, when key data are changed, it becomes 
possible to set up the key data of a receiving side correctly by [ which incremented at the time of the transmission 
just behind that ] overlapping by the address and transmitting the same cipher. 
[0020] 

Example 3 . 

Another example of this design is shown in drawing 3 . In drawing, although 1-17 are the same as that of drawing 1 , 
18 is a cipher store circuit, it is inserted between the cipher input circuit 1 and the decryption circuit 6, and the 
storage cipher 19 memorized in the cipher store circuit 18 is supplied to the cipher decode circuit 6. When 
modification of key data is detected [ in / an input cipher is held until the following cipher is inputted, and / the 
plaintext significance judging circuit 12 ] by doing in this way, by repeating the increment actuation by the key data 
table address generation circuit 16. a loop formation is operated continuously and it becomes possible to decode the 
cipher itself memorized in the cipher store circuit 18. Therefore, updating to decode and new key data is attained, 
without transmitting the same cipher repeatedly by the transmitting side like an example 1 in this case. 
[0021] 
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[Effect of the Device] 

As mentioned above, modification of key data is attained, without delivering key data from a transmitting side to a 
receiving side in a system without a means to deliver key data in addition to the channel used for transmission and 
reception of a cipher according to this design. Therefore, also in the communication system which cannot deliver 
key data other than a cipher channel, it is effective in avoiding the danger of wire tapping considered when delivering 
key data via a cipher channel, and being able to avoid blocking of the communication link brought about when an 
error is moreover produced to key data during delivery of key data. 
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DESCRIPTION OF DRAWINGS 



[Brief Description of the Drawings] 

[Drawing 1] It is the block diagram showing one example of this design. 

[Drawing 2] It is drawing showing actuation of the significance judging circuit of the plaintext used for the data data 
encryption equipment of this design. 

[Drawing 3] It is drawing showing the example of the data data encryption equipment which is one more of the 
design of this. 

[Drawing 4] It is the block diagram of conventional data data encryption equipment 
[Description of Notations] 

1 Input Cipher 

2 Cipher Input Circuit 

3 Cipher 

4 Key Data Table 

5 Key Data 

6 Decryption Circuit 

7 Plaintext 

8 Plaintext Output Circuit 

9 Output Plaintext 

10 Plaintext Store Circuit 

1 1 Storage Plaintext 

12 Plaintext Significance Judging Circuit 

13 Significance Level-Setting Circuit 

14 Significance Level 

15 Significance Judging Result Flag 

16 Key Data Table Address Generation Circuit 

17 Key Data Table Address 

18 Cipher Store Circuit 

19 Storage Cipher 

20 Key Data Distinction Circuit 

21 Updating Key Data 

22 Key Data Store Circuit 
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